Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    24/06/2024, 12:38

General

  • Target

    Ayron vom Maikono.pdf

  • Size

    616KB

  • MD5

    e369ed7e9d5c4773ebe1e2f6855df33c

  • SHA1

    c59399c0b172f015b4b5a96e55fdfb466e8e9457

  • SHA256

    5b2c207c694976801063c334a8873fc7ac2e81246f79801794b33b4f656a28cc

  • SHA512

    b3deaa9f3ee6957dfd8c9032cc972a5712dd44db3f6fb521e3cfe2ec13d9042ca59c796f872b730649eee96a1ee9f7d16e50397c3b3b3bb03c877528109fa8ab

  • SSDEEP

    12288:eKytj6As5j9oWzZSNuzmx3kdjAhMMpPnLdwMW42jh3LtK29DdgMTh:eK8r6jaWdS8yFnLWlhKmnh

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Ayron vom Maikono.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    dd7f617e4c45783090834ddac883617c

    SHA1

    e1ab458dfc467f4ec889d712e88b62e67723f39a

    SHA256

    2d3a73fd943aa398d71cb9bdb43296b1c9fa00f2ccfbc9156fa2ae6a147dc39d

    SHA512

    c16656bb409139a7a20dfc1d814ea54fc794217776ed0e10712e4cb13ac0b114c4811e98b2e395b2991b7c897ebefcd4a7cdacf46dda15a5398cbbd3faed2873